← Back

CVE-2011-1338

nvd nist
Published: Jul 11, 2011Modified: Apr 29, 2026

JSON object

Loading...
6.9
Vector
AV:L/AC:M/Au:N/C:C/I:C/A:C
Exploitability: 3.4 / Impact: 10.0
Source: NVD

Description

Untrusted search path vulnerability in XnView before 1.98.1 allows local users to gain privileges via a Trojan horse .exe file in a folder selected by the "Open containing folder" menu item.

Affected (7)

Products: Xnview: Xnview
Xnview
1 product
Xnview
Configuration A
7 vulnerable
Vulnerable SoftwareAffected Versions
Xnview
Xnview
Up to 1.98
Xnview
Version 1.74
Xnview
Version 1.80.1
Xnview
Version 1.80.2
Xnview
Version 1.80.3
Xnview
Version 1.80
Xnview
Version 1.82

References (12)

Source: vultures@jpcert.or.jp
Source: vultures@jpcert.or.jp
Source: vultures@jpcert.or.jp
Vendor Advisory
Source: vultures@jpcert.or.jp
Source: vultures@jpcert.or.jp
Source: vultures@jpcert.or.jp
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.